90387e8a7abc18f6ed2e12d0f58f9310fd1ab1f7265ccc562ad28716058ad3b4

Sharing

Copy URL Twitter E-mail

General

Target

90387e8a7abc18f6ed2e12d0f58f9310fd1ab1f7265ccc562ad28716058ad3b4
Size

865KB
MD5

6b5084447db21ddf5e1c11cfb99ee390
SHA1

7050430d37ccef21057aff962f24660a85019d7f
SHA256

90387e8a7abc18f6ed2e12d0f58f9310fd1ab1f7265ccc562ad28716058ad3b4
SHA512

2750435946a81f9e622680f5aa10b5c1d4cf18a214097a18dce3816f438b37d103ffd589c3df05cd309502e7326f0ae46caf4a01908ca1a221eab10ae760563f
SSDEEP

24576:wRhvyeqGhiOXYG9lFA3uhTjeEH+yVu+Ylogh:ghvy71G7F/tj7ed+Ed

Score

N/A

Malware Config

Signatures

Files

90387e8a7abc18f6ed2e12d0f58f9310fd1ab1f7265ccc562ad28716058ad3b4
.exe windows x86

7d8b2509f5fc9bc1e1b566a4f243058e

Code Sign

8e:ca:6d:44:de:48:90:e8:53:70:9b:1e:fc:6b:aa:90:13:7c:b7:41
Signer

Actual PE Digest

8e:ca:6d:44:de:48:90:e8:53:70:9b:1e:fc:6b:aa:90:13:7c:b7:41

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

NO CERTIFICATE

01/01/0001, 00:00
Valid: false

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_EndDrag
ImageList_DragShowNolock
ImageList_GetDragImage
ImageList_Read

wininet

HttpEndRequestA

kernel32

WriteFile
ExitProcess
VirtualAlloc
CreateFileA
FileTimeToDosDateTime
EnumCalendarInfoA
CreateEventA
CompareStringA
GetCurrentProcessId
CreateFileMappingA
SetStdHandle
SetFilePointer
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
MultiByteToWideChar
LoadLibraryA
HeapReAlloc
GetOEMCP
GetACP
GetCPInfo
HeapAlloc
RtlUnwind
HeapFree
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetVersion
GetVersionExA
GetProcAddress
GetCommandLineA
lstrcmpiA
CloseHandle
GetLastError
SetErrorMode
QueryPerformanceCounter
GetTickCount
CreateThread
GetCurrentThreadId
GetModuleFileNameA
UnhandledExceptionFilter
FlushFileBuffers
GetCurrentProcess
TerminateProcess
GetStartupInfoA
GetModuleHandleA

user32

GetSystemMetrics
RegisterClassExA
CreateWindowExA
ShowWindow
MessageBoxA
ShowScrollBar
ShowCursor
ShowOwnedPopups
TranslateMessage
ValidateRect
WaitMessage
SetScrollPos
SetScrollRange
SetWindowLongA
SetWindowPlacement
SetWindowPos

gdi32

SetAbortProc
GetLogColorSpaceW
DeleteMetaFile
OffsetWindowOrgEx
TextOutW
SetEnhMetaFileBits
SetPixel
SetROP2
StretchBlt
UnrealizeObject
Rectangle

comdlg32

GetOpenFileNameA
FindTextW
ReplaceTextW
ChooseFontA
GetSaveFileNameA

advapi32

AllocateAndInitializeSid
RegCloseKey

shell32

ShellExecuteA
StrStrIA

ole32

CoTaskMemAlloc

oleaut32

VarDecRound
VarRound
VarNumFromParseNum
SafeArrayRedim
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayGetElement
SafeArrayPutElement
VariantInit

Sections

.text
Size: 696KB - Virtual size: 694KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 148KB - Virtual size: 145KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7d8b2509f5fc9bc1e1b566a4f243058e

Code Sign

8e:ca:6d:44:de:48:90:e8:53:70:9b:1e:fc:6b:aa:90:13:7c:b7:41Signer

Signature Validations

Verification

01/01/0001, 00:00 Valid: false

Headers

File Characteristics

Imports

comctl32

wininet

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

Sections

.text Size: 696KB - Virtual size: 694KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 12KB - Virtual size: 18KB

.rsrc Size: 148KB - Virtual size: 145KB

8e:ca:6d:44:de:48:90:e8:53:70:9b:1e:fc:6b:aa:90:13:7c:b7:41
Signer

01/01/0001, 00:00
Valid: false

.text
Size: 696KB - Virtual size: 694KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 12KB - Virtual size: 18KB

.rsrc
Size: 148KB - Virtual size: 145KB